Логотип exploitDog
Консоль
Логотип exploitDog

exploitDog

rocky логотип

RLSA-2025:14510

Опубликовано: 03 окт. 2025
Источник: rocky
Оценка: Important

Описание

Important: kernel security update

The kernel packages contain the Linux kernel, the core of any Linux operating system.

Security Fix(es):

  • kernel: net_sched: ets: Fix double list add in class with netem as child qdisc (CVE-2025-37914)

  • kernel: i40e: fix MMIO write access to an invalid page in i40e_clear_hw (CVE-2025-38200)

  • kernel: ice: fix eswitch code memory leak in reset scenario (CVE-2025-38417)

For more details about the security issue(s), including the impact, a CVSS score, acknowledgments, and other related information, refer to the CVE page(s) listed in the References section.

Затронутые продукты

  • Rocky Linux 10

НаименованиеАрхитектураРелизRPM
kernelx86_6455.29.1.el10_0kernel-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-abi-stablelistsnoarch55.29.1.el10_0kernel-abi-stablelists-6.12.0-55.29.1.el10_0.noarch.rpm
kernel-corex86_6455.29.1.el10_0kernel-core-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debugx86_6455.29.1.el10_0kernel-debug-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debug-corex86_6455.29.1.el10_0kernel-debug-core-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debuginfo-common-x86_64x86_6455.29.1.el10_0kernel-debuginfo-common-x86_64-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debug-modulesx86_6455.29.1.el10_0kernel-debug-modules-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debug-modules-corex86_6455.29.1.el10_0kernel-debug-modules-core-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debug-modules-extrax86_6455.29.1.el10_0kernel-debug-modules-extra-6.12.0-55.29.1.el10_0.x86_64.rpm
kernel-debug-uki-virtx86_6455.29.1.el10_0kernel-debug-uki-virt-6.12.0-55.29.1.el10_0.x86_64.rpm

Показывать по

Связанные CVE

CVE-2025-37914
CVE-2025-38200
CVE-2025-38417

Ссылки на источники

Исправления

Связанные уязвимости

oracle-oval логотип

ELSA-2025-14510

oracle-oval
2 месяца назад

ELSA-2025-14510: kernel security update (IMPORTANT)

oracle-oval логотип

ELSA-2025-14420

oracle-oval
2 месяца назад

ELSA-2025-14420: kernel security update (IMPORTANT)

ubuntu логотип

CVE-2025-37914

ubuntu
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: net_sched: ets: Fix double list add in class with netem as child qdisc As described in Gerrard's report [1], there are use cases where a netem child qdisc will make the parent qdisc's enqueue callback reentrant. In the case of ets, there won't be a UAF, but the code will add the same classifier to the list twice, which will cause memory corruption. In addition to checking for qlen being zero, this patch checks whether the class was already added to the active_list (cl_is_active) before doing the addition to cater for the reentrant case. [1] https://lore.kernel.org/netdev/CAHcdcOm+03OD2j6R0=YHKqmy=VgJ8xEOKuP6c7mSgnp-TEJJbw@mail.gmail.com/

redhat логотип

CVE-2025-37914

CVSS3: 7
redhat
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: net_sched: ets: Fix double list add in class with netem as child qdisc As described in Gerrard's report [1], there are use cases where a netem child qdisc will make the parent qdisc's enqueue callback reentrant. In the case of ets, there won't be a UAF, but the code will add the same classifier to the list twice, which will cause memory corruption. In addition to checking for qlen being zero, this patch checks whether the class was already added to the active_list (cl_is_active) before doing the addition to cater for the reentrant case. [1] https://lore.kernel.org/netdev/CAHcdcOm+03OD2j6R0=YHKqmy=VgJ8xEOKuP6c7mSgnp-TEJJbw@mail.gmail.com/

nvd логотип

CVE-2025-37914

nvd
6 месяцев назад

In the Linux kernel, the following vulnerability has been resolved: net_sched: ets: Fix double list add in class with netem as child qdisc As described in Gerrard's report [1], there are use cases where a netem child qdisc will make the parent qdisc's enqueue callback reentrant. In the case of ets, there won't be a UAF, but the code will add the same classifier to the list twice, which will cause memory corruption. In addition to checking for qlen being zero, this patch checks whether the class was already added to the active_list (cl_is_active) before doing the addition to cater for the reentrant case. [1] https://lore.kernel.org/netdev/CAHcdcOm+03OD2j6R0=YHKqmy=VgJ8xEOKuP6c7mSgnp-TEJJbw@mail.gmail.com/